The Tor project said it could face attempts to incapacitate its network in the next few days through the seizure of specialized servers.

The project did not name the group or agency that may try to seize its directory authorities, which guide Tor users on the list of distributed relays on the network that bounce communications around.

“We are taking steps now to ensure the safety of our users, and our system is already built to be redundant so that users maintain anonymity even if the network is attacked. Tor remains safe to use,” wrote “arma” in a post Friday on the Tor project blog. The “arma” developer handle is generally associated with project leader Roger Dingledine.

There were no reports of a seizure by late Sunday. The project promised to update the blog and its Twitter account with new information.

Users who live under repressive regimes look to Tor as a way to escape surveillance and censorship. But the network has also been used by illegal websites including online sellers of drugs, like the underground drug market Silk Road. A second version of the market, Silk Road 2.0, was launched a few weeks after the first was seized by law enforcement in October 2013, according to the U.S. Department of Justice.

Millions use the Tor network at their local Internet cafe to stay safe for ordinary Web browsing, as also banks, diplomatic officials, members of law enforcement, bloggers and others, according to the Tor project.

“Attempts to disable the Tor network would interfere with all of these users, not just ones disliked by the attacker,” it added.